IBM Security Bulletin: Proof of Concept exploit code, which uses a flaw in glibc that can allow a local unprivileged user to gain root on Linux machine in IBM QRadar Incident Forensics (CVE-2014-5119)
|
Información sobre el sistema
|
|
|
Software afectado |
IBM |
Descripción
|
A vulnerability in the GNU C library (glibc) can allow a local unprivileged user to gain root on some Linux machines. To exploit this flaw, an attacker needs to be able to run unprivileged arbitrary code on the local system. CVE(s): CVE-2014-5119 Affected product(s) and affected version(s): IBM QRadar Incident Forensics 7.2.3 and below Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin:
More info:
https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_proof_of_concept_exploit_code_which_uses_a_flaw_in_glibc_that_can_allow_a_local_unprivileged_user_to_gain_root_on_linux_machine_in_ibm_qradar_incident_forensics_cve_2014_5119 |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2014-5119 ,CVE-2014-3508 ,CVE-2014-3509 ,CVE-2014-3511 ,CVE-2014-3566 ,CVE-2014-6145 ,CVE-2014-1568 ,CVE-2014-4263 ,CVE-2012-5784 ,CVE-2014-3513 ,CVE-2014-3567 ,CVE-2014-3568 ,CVE-2014-3086 ,CVE-2014-4227 ,CVE-2014-4262 ,CVE-2014-4219 ,CVE-2014-4268 ,CVE-2014-4218 and CVE-2014-4252. |